ISC2 Exam ISSAP Topic 4 Question 15 Discussion

Certification authority (CA) is an entity in a network, which manages security credentials and public keys for message encryption. It issues

certificates that confirm the identity and other attributes of a certificate in relation to other entities. Depending on the public key infrastructure

implementation, a certificate includes the owner's name, the owner's public key, information about the public key owner, and the expiry date

of the certificate.

VeriSign is a certification authority that issues digital certificates. A user can request VeriSign to verify the validity of the certificate.

Answer option B is incorrect. A certificate user is not responsible for maintaining certificates in a public key infrastructure (PKI).

Answer option D is incorrect. The Internet Authentication Service (IAS) performs centralized connection authentication, authorization, and

accounting for dial-up and virtual private network (VPN), remote access, and router-to-router connections.

Answer option A is incorrect. A domain controller is a server that has Active Directory services installed and running. Domain controllers hold a

full replica of the directory partitions for their domains. They resolve queries for information about objects in their domain and refer unresolved

queries to domain controllers in other domains. Domain controllers also manage changes to directory information and are responsible for

replicating those changes to other domain controllers.